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The  DoD^s  Public  Key  Infrastructure  (PKJf  provides  general-purpose  PKI  services  to  a  broad  range  of  applications  through 
effective  use  of  public  key  cryptography.  This  article  presents  a  quick  overview  of  the  Defense-in-Depth  strategy,  briefly 
explains  key  PKI  elements  and  security  mechanisms,  and  addresses  how  the  Hir  Force  is  employing  this  technology  to  improve 
information  assurance  (lA). 


As  the  Internet  rapidly  expanded  in  the 
’90s,  so  did  the  DoD’s  usage  of  the 
Web  to  provide  global  support  to  the 
warfighter.  The  Internet,  being  an  open 
environment,  was  not  secure  enough  to  con¬ 
duct  mission-critical,  unclassified  transac¬ 
tions.  Therefore,  to  fuUy  benefit  from  this 
new  medium,  a  more  secure  capability  had 
to  be  put  into  place.  Specifically,  Internet- 
based  transactions  would  need  to  provide  a 
reliable  means  to:  conduct  private  communi¬ 
cations  between  parties  on  the  public 
Internet,  verify  a  party’s  identity  over  the 
Internet,  replace  handwritten  signatures,  and 
ensure  that  data  is  not  altered  during  trans¬ 
mission. 

Today,  adversaries,  in  their  current  quest 
to  subvert  DoD  capabilities  by  debilitating 
critical  information  assets,  are  coming  from 
all  directions.  Terrorists,  hackers,  unfriendly 
nation  states,  and  various  types  of  criminal 
elements — ^motivated  by  the  acquisition  of 
top-secret  intelligence,  financial  gain,  intel¬ 
lectual  property  theft,  denial  of  service,  or 
simply  pride  in  exploiting  a  notable  target — 
are  routinely  attacking  DoD  networks.  Their 
methods  range  from  passively  monitoring 
communications  to  social  engineering  to 
full-blown  active  network  attacks  with  virus¬ 
es  and  other  malicious  means. 

Consequently  lA,  at  least  in  DoD  terms, 
is  achieved  when  information  and  informa¬ 
tion  systems  are  protected  against  such 
attacks  through  the  application  of  critical 

Figure  1 :  Defense-in-Depth  Strategy 


security  services  such  as  availability,  integrity, 
authentication,  confidentiality,  and  non¬ 
repudiation. 

Defense-in-Depth  Strategy: 

A  Quick  Overview 

The  DoD’s  Defense-in-Depth  strategy  is  a 
practical  method  for  achieving  lA  in  today’s 
highly  networked  environments  [1].  It  uses  a 
best practices  approach  that  relies  on  intelligent 
applications  of  existing  techniques  and  tech¬ 
nologies.  The  strategy  recommends  a  bal¬ 
ance  between  the  protection  capability  and 
the  cost,  performance,  and  operational  con¬ 
siderations  of  the  overall  DoD  mission. 
Comprised  of  a  robust  and  integrated  set  of 
LA  measures,  the  strategy  hinges  on  the  bal¬ 
anced  focus  of  three  primary  elements:  peo¬ 
ple,  technology,  and  operations  (see  Figure  1). 

The  people  element  encompasses  estab¬ 
lishing,  applying,  and  enforcing  applicable 
policies  and  procedures,  assigning  roles  and 
responsibilities,  committing  resources,  train¬ 
ing  critical  personnel  (e.g,  users  and  system 
administrators),  and  requiring  personal 
accountability  [1].  This  includes  establishing 
physical  security  and  personnel  security 
measures  to  control  and  monitor  access  to 
facilities  and  critical  elements  of  the  IT  envi¬ 
ronment  such  as  networks  and  systems. 

A  wide  range  of  technologies  are  avail¬ 
able  that  provide  LA  services  and  intrusion 
detection.  To  ensure  the  right  technologies 
are  procured  and  deployed,  the  technology 


element  focuses  on  the  establishment  of 
effective  policies  and  processes  for  technol¬ 
ogy  acquisition  and  is  grounded  on  two  pri¬ 
mary  LA  principles:  defense  in  multiple 
places  and  having  layered  defenses. 

Given  that  adversaries  can  attack  from 
multiple  points  using  either  insiders  or  out¬ 
siders,  protection  mechanisms  at  multiple 
locations  are  in  place  to  facilitate  resistance 
to  all  classes  of  attacks  [1].  Focus  areas 
(shown  in  Figure  2)  include  defending: 

•  Networks  and  Infrastructure.  Prot¬ 
ecting  the  local  and  wide  area  communi¬ 
cations  networks  and  providing  confi¬ 
dentiality  and  integrity  protection  for 
data  transmitted  over  these  networks. 

•  Enclave  Boundaries.  Deploying  fire¬ 
walls  and  intrusion  detection  to  resist 
active  attacks. 

•  The  Computing  Environment.  Pro¬ 
viding  access  controls  on  hosts  and 
servers  to  resist  insider,  close-in,  and  dis¬ 
tribution  attacks. 

The  best  available  lA  products  can  stiH 
have  inherent  weaknesses;  therefore,  multi¬ 
ple  and  layered  defense  mechanisms  are 
deployed  as  unique  barriers  between  the 
adversary  and  its  target  to  deter  exploita¬ 
tion  of  possible  vulnerabilities,  increase  the 
probability  of  detection,  and  reduce  the 
chances  of  successful  penetration  [1]. 
Focus  areas  include  multiple  supporting 
infrastructures: 

•  Deployment  of  nested  firewalls  at  outer 
and  inner  network  boundaries. 

•  Specification  of  security  robustness  of 
each  LA  component  as  a  function  of  the 
value  of  what  it’s  protecting. 

•  Deployment  of  robust  key  management 
infrastructures  and  PKIs  that  support  all 
LA  technologies  and  are  highly  resistant 
to  attack. 

•  Deployment  of  methods  to  detect  intru¬ 
sions,  analyze  and  correlate  the  results, 
and  then  react  accordingly. 

PKI  as  a  Supporting 
Infrastructure 

Now  that  the  big  picture  is  in  place,  it’s  time 
to  illustrate  how  the  PKI  and  its  founda¬ 
tional  element  of  public  key  cryptography  is 
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Figure  2:  Defense-in-Depth  Focus  Areas 


a  critical  supporting  infrastructure  to  the 
overall  strategy.  In  its  essence,  public  key 
cryptography  provides  three  functions  that 
help  meet  the  needs  of  the  Defense-in- 
Depth  strategy:  identity  authentication,  digi¬ 
tal  signatures,  and  pubHc  key  encryption — 
all  operating  within  a  chain  of  trusF. 

Identity  authentication  establishes  the 
validity  of  an  entity’s  claimed  identity  and  is 
used  in  making  access-control  decisions. 
The  entity  may  be  a  user,  a  Web  service,  or  a 
device. 

A  digital  signature  is  an  electronic  code 
that  can  be  attached  to  data.  It  identifies  the 
signer  of  the  data  and  associates  the  signer 
with  the  data  being  signed.  Digital  signatures 
verify  that  the  signer  is  really  the  person  or 
entity  he  or  she  claims  to  be,  or  be  a  part  of, 
and  that  the  signed  data  was  not  modified. 

Public  key  encryption  allows  multiple 
users  to  efficiently  exchange  encrypted  data. 
Public  key  encryption  establishes  a  common 
encryption  key  over  the  network  without 
giving  away  enough  information  for  some¬ 
one  observing  the  transaction  to  deduce  the 
key.  Together,  digital  signatures  and  public 
key  encryption  allow  two  or  more  commu¬ 
nicating  parties  to  positively  identify  one 
another  and  keep  their  communications 
confidential  [2]. 

Public  key  systems  issue  a  pair  of  keys  to 
each  user:  a  private  key,  which  the  user  does 
not  disclose  to  anyone,  and  a  public  key, 
which  is  publicly  advertised.  A  signer 
encrypts  data  using  the  recipient’s  public  key, 
and  the  receiver  decrypts  it  with  their  private 
key.  Public  keys  are  contained  in  data  struc¬ 
tures  called  certificates.  Certificates  contain  a 
digital  signature  from  an  issuing  authority 
and  the  user’s  identification,  which  binds  the 
user’s  identity  to  their  public  key. 

Several  support  services  are  required  to 
use  public  key  cryptography,  including  a 
means  of  issuing,  distributing,  and  advertis¬ 
ing  keys  and  certificates;  a  way  to  verify  cer¬ 
tificate  authenticity;  and  a  process  to  revoke 
them.  These  services  are  provided  by  an  inte¬ 
grated  combination  of  equipment  and 
administrators  collectively  known  as  the  PKI. 

One  more  component  is  required  to 
implement  public  key  cryptography:  com¬ 
puter  applications  that  support  its  use.  The 
PKI  provides  a  credential  service  for  these 
applications.  Applications  are  not  directly 
part  of  the  PKI,  but  public  key-enabled 
applications  improve  access  control  by  lever¬ 
aging  PKI-based  identity  authentication,  and 
digital  signatures  on  electronic  forms  auto¬ 
mate  many  business  processes  that  tradi¬ 
tionally  rely  on  the  exchange  of  paper  forms 
and  handwritten  signatures.  Public  key 
encryption  provides  confidentiality  for  sen¬ 
sitive,  unclassified  data  over  the  non- secure 
IP  Router  Network  (NIPRNet)  and  pro¬ 


vides  confidentiality  for  restricted  groups  on 
classified  networks. 

Secret  Key  and  Public  Key 
Cryptography 

To  understand  public  key  cryptography,  it  is 
useful  to  understand  traditional  secret  hep  cfjp- 
tography.  Secret  key  cryptography  is  also 
known  as  symmetric  key  cryptography 
because  the  same  key  is  used  to  encrypt  and 
decrypt  the  data  using  the  same  algorithm  in 
the  same  direction  (Figure  3).  Clear- text  data 
(i.e.,  data  in  its  original  form)  is  transformed 
(encrypted)  into  cipher  text,  which  is  incom¬ 
prehensible.  The  cipher  text  can  only  be 
decrypted,  or  transformed  to  the  original 
clear  text,  by  someone  who  has  a  copy  of 
the  encryption  key.  One  can  try  to  guess  the 
key,  but  the  objective  of  cryptography  is  to 
make  guessing  not  feasible. 

There  are  major  challenges  with  using 
symmetric  key  cryptography,  one  of  which 
is  finding  a  secure  way  to  provide  keys  to 
other  parties  so  that  secure  communication 
between  them  is  possible.  In  a  small  office, 
one  can  hand-carry  keys  to  the  other  par¬ 
ties,  but  as  the  number  of  correspondents 
becomes  larger  and  more  geographically 
dispersed,  this  process  soon  becomes 
impractical. 

A  second  major  challenge  is  difficulties 


of  scale.  The  secret  key  shared  between  two 
parties  (e.g.,  Alice  and  Bob  shown  in  Figure 
3)  must  be  different  from  the  secret  key 
shared  between  Alice  and  someone  else; 
otherwise,  the  confidentiality  of  messages 
intended  for  Bob  is  compromised.  Because 
the  same  is  true  for  every  user,  this  com¬ 
munity  could  collectively  hold  millions  of 
unique  secret  keys.  As  the  community 
grows,  the  storage  and  maintenance  of 
such  large  numbers  of  keys  becomes 
unmanageable  [2]. 

Public  key  cryptography  is  referred  to  as 
asymmetric  cryptography  because  it  uses  two 
different  keys:  a  public  key  and  a  private  key 
(see  Figure  4,  page  13).  One  key  is  kept  pri¬ 
vate^,  and  the  other  is  made  public.  For 
example,  if  Bob  publishes  his  public  key, 
anyone  with  access  to  his  public  key  can 
encrypt  a  message  to  Bob.  Since  the  public 
key  cannot  be  used  to  decrypt  the  message, 
only  Bob  (who  is  the  sole  possessor  of  the 
corresponding  private  key)  can  decrypt  the 
message. 

Public  key  cryptography  is  more  mathe¬ 
matically  complex  than  secret  key  cryptogra¬ 
phy,  therefore  it  is  slower.  To  speed  the 
process,  public  key  cryptography  passes  a 
session,  message,  or  bulk  encryption  key — 
which  are  secret  keys  used  for  subsequent 
encryption  and  decryption.  In  addition  to 
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providing  confidentiality  through  encryp¬ 
tion,  public  key  cryptography  is  used  for  dig¬ 
ital  signatures'^  and  identity  authentication. 

PKI  Core  Services 

As  the  DoD  becomes  increasingly  reliant  on 
computer  networking  to  achieve  informa¬ 
tion  superiority  over  adversaries,  the  core 
services  provided  by  a  PKI  (i.e.,  authentica¬ 
tion,  integrity,  confidentiality,  and  non-repu¬ 
diation)  become  increasingly  critical. 

Identification  and  Authentication 

Identification  is  defined  as  the  process  an 
information  system  uses  to  recognize  an 
entity,  while  authentication  is  a  security  mea¬ 
sure  designed  to  establish  the  proper  assur¬ 
ance  level  of  a  claimed  identity  [2].  A  user’s 
identity  is  authenticated  as  part  of  the  cer¬ 
tificate-issuance  process.  Identification  and 
authentication  are  useful  for  granting  autho¬ 
rization  to  information  on  a  server  via 
remote  access,  protecting  network  manage¬ 
ment  from  masqueraders  (i.e.,  persons 
attempting  to  use  counterfeit  or  stolen  cre¬ 
dentials  and  gaining  physical  access  to  a 
restricted  area). 

Data  Integrity 

Integrity  is  the  assurance  of  non-alteration 
and  it  is  this  security  service’s  job  to  detect 
unauthorized  modification  or  destruction  of 
information  [2].  Digital  signatures  support 
data  integrity  verification.  In  contrast  to 
handwritten  signatures,  verification  of  a  dig¬ 
ital  signature  relies  on  the  authentication  of 
the  signer’s  identity  and  proves  that  the  data 
remains  unchanged. 

Non-repudiation 

Non-repudiation  provides  undeniable  proof 
of  a  party’s  participation  in  a  communica¬ 
tion.  The  basic  idea  is  that  a  user  is  crypto¬ 
graphically  bound  to  a  specific  transaction  in 
such  a  way  that  they  cannot  deny  (repudiate) 
having  conducted  the  transaction  [2]. 
Activities  such  as  command  and  control, 
official  release  of  procurement  documents, 
and  travel  reimbursement  approvals  are 
accompanied  by  legal  requirements  for  non¬ 
repudiation.  The  DoD  satisfies  these  legal 
requirements  with  PKI’s  digital  signature 
capability. 

Confidentiality 

Confidentiality  is  the  assurance  of  data  pri¬ 
vacy.  It  ensures  that  information  is  not  dis¬ 
closed  to  unauthorized  persons,  processes, 
or  devices  [2].  Various  types  of  transac¬ 
tions — such  as  Web-based  access,  file  trans¬ 
fers,  network  management,  payment  trans¬ 
actions  and  secure  messaging — require  con¬ 
fidentiality  to  protect  sensitive  unclassified 
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message  data  against  eavesdropping,  that  is, 
unauthorized  persons  or  entities  being  able 
to  gather  information  by  actively  or  passive¬ 
ly  monitoring  network  traffic  [3,  4,  5,  6]. 

Multiple  Assurance  Levels: 

Not  All  Information  Is 
Created  Equal 

As  a  credential  service,  a  PKI  binds  user  and 
entity  identities  with  digital  certificates  and 
associated  public  keys.  The  level  of  assur¬ 
ance  of  a  public  key  certificate  is  an  asser¬ 
tion  by  a  Certification  Authority  of  the 
degree  of  confidence  a  relying  party  may 
reasonably  place  in  the  binding  of  a  user’s 
public  key  (and  thereby  the  private  key)  to 
the  identity  and  privileges  asserted  in  the 
certificate  [7].  The  processes  and  controls 
employed  in  PKI  operations,  the  methods 
used  to  protect  the  users’  private  keys,  and 
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types  of  information  are 
extremely  valuable  to  an 
attacker,  while  others 
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some  information  may 
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but  would  be  disastrous 
if  it  was  corrupted 
or  destroyed. 


the  strength  of  the  cryptographic  algo¬ 
rithms  used,  aU  serve  a  role  in  determining 
the  PKI’s  assurance  level. 

Not  aU  information  is  created  equal, 
however.  Some  types  of  information  are 
extremely  valuable  to  an  attacker,  while  oth¬ 
ers  have  almost  no  value.  On  the  other  hand, 
some  information  may  be  freely  disclosed 
but  would  be  disastrous  if  it  was  corrupted 
or  destroyed.  Threats^  vary  based  on  the 
value  of  information  and  the  networking 
environment  in  which  it  resides.  And  while  a 
single  solution — ^providing  support  to  every 
application — ^would  appear  to  be  desirable, 
different  legal,  security,  and  national  policy 
requirements  for  protecting  the  different 
categories  of  information  (such  as  adminis¬ 


trative,  e-commerce.  Mission  Assurance 
Category  I  and  II,  etc.),  necessitate  the  most 
cost-effective  solution  as  one  which  sup¬ 
ports  multiple  assurance  levels. 

In  [7],  the  various  levels  of  assurance  for 
DoD’s  PKI  are  defined:  Medium,  Medium 
2048,  Medium  Hardware,  Medium  Hardware 
2048,  Personal  Identity  Verification  (PIV) 
Huthori^tion,  PIV  Huthori^tion  2048,  and 
High.  The  applicability  of  the  different 
assurance  levels  is  determined  by  the  value 
of  the  information  being  protected  and  the 
threat  environment.  Medium  assurance  levels 
are  intended  to  protect  applications  han¬ 
dling  medium- value  information  in  a  low-to 
medium-risk  environment.  The  NIPRNet, 
where  the  majority  of  DoD  business  is  con¬ 
ducted,  is  an  example  of  a  medium  assur¬ 
ance  environment. 

PKI  Security  Mechanisms  and 
Supporting  Services 

As  mentioned  previously,  a  PKI  is  a  com¬ 
plex  system  of  integrated  components, 
mechanisms,  and  security  services  that  work 
in  concert  to  support  the  long-term  integri¬ 
ty  of  application  data.  The  following  illus¬ 
trates  these  underlying  security  mechanisms 
and  their  supporting  services: 

Security  Mechanisms 

Key  Exchange 

Key  exchange  is  the  process  that  commu¬ 
nicating  parties  use  to  establish  a  common 
key  for  secure  communications.  There  are 
several  ways  an  originating  party  can 
obtain  the  receiving  party’s  public  key: 
from  a  directory,  directly  from  the  receiv¬ 
ing  party  as  part  of  an  online  key  exchange 
protocol,  or  from  a  cache  (if  the  originat¬ 
ing  party  had  some  prior  communication 
with  the  receiving  party).  Issuing  Certi¬ 
fication  Authorities  automatically  post 
subscribers’  pubHc  keys  to  the  Global 
Directory  Service^,  and  in  the  Air  Force, 
users  also  publish  their  own  pubHc  keys  to 
the  Air  Force  Global  Address  List  for  easy 
access. 

Digital  Signatures 

In  the  digital  signature  process  (as  illustrat¬ 
ed  in  Figure  5),  a  hash  algorithm  (i.e.,  a  mes¬ 
sage  digest)  is  produced.  The  hash  is 
encrypted  using  the  signer’s  private  key. 
After  receiving  the  message,  the  recipient 
decrypts  the  hash  using  the  signer’s  public 
key  and  compares  it  to  a  hash  calculated 
from  the  received  message.  If  the  two  are  a 
match,  the  recipient  knows  that:  a)  the  mes¬ 
sage  was  not  changed  from  the  time  the 
signer  applied  the  signature  and  b)  the  sign¬ 
er’s  private  key  was  used;  therefore,  the  mes¬ 
sage  must  have  come  from  the  signer  [2] . 
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Data  Recovery 

Data  recovery  is  a  security  service  that 
enables  the  originator  to  recover  inaccessi¬ 
ble  data  or  permits  an  authorized  third 
party  to  gain  access  to  encrypted  informa¬ 
tion.  Legitimate  reasons  data  recovery  may 
be  necessary  are:  a  user  obtains  new  PKI 
certificates  and  keys,  and  the  original  key 
that  encrypted  data  is  no  longer  available; 
the  owner  departs  the  DoD  and  leaves 
behind  encrypted  official  data  that  needs  to 
be  accessed;  and  for  legal  or  intelligence 
investigations. 

Key  Escrow  and  Key  Recovery 

Key  escrow  is  the  process  of  storing  private 
encryption  keys  for  the  purpose  of  enabling 
data  recovery.  It  automatically  occurs  during 
the  certificate  issuance  process.  Digital  sig¬ 
nature  keys  are  not  escrowed. 

Key  recovery  is  the  process  of  obtain¬ 
ing  a  copy  of  an  escrowed  encryption  key 
and  delivering  it  to  an  authorized  requester. 
Key  recovery  systems  store  a  copy  of  a 
user’s  private  encryption  key  in  a  secured 
database,  allowing  access  by  authorized  per¬ 
sonnel  known  as  Key  Recovery  Agents 
(KRAs).  KRAs  are  highly  trusted  personnel 
responsible  for  recovering  archived  certifi¬ 
cates  in  very  specific  situations.  The  process 
of  key  recovery  is  protected  by  two-person 
integrity;  keep  in  mind,  however,  that  signa¬ 
ture  keys  are  not  recoverable. 

Supporting  Services 

Key  Generation 

Key  generation  generates  the  public-private 
key  pair  that  enables  public  key  cryptogra¬ 
phy  functions.  User  keys  are  encrypted  onto 
an  authorized  token  (i.e.,  a  smart  card)  or 
removable  storage  media  (e.g.,  a  CD).  The 
DoD  ID  card,  known  as  the  Common 
Access  Card  (CAC),  is  a  smart  card  and  is 
the  preferred  token  for  PKI  certificates  and 
keys  [8]. 

Certificate  Generation  and  Revocation 

Once  the  key  pair  is  generated,  associated 
certificates  are  generated  by  the  issuing 
Certification  Authority  server.  For  users, 
the  process  of  generating  keys  and  issuing 
certificates  is  combined. 

Certificate  revocation  is  necessary  when 
a  certificate  becomes  invalid  before  its  expi¬ 
ration  date;  there’s  reason  to  believe  the  pri¬ 
vate  key  associated  with  the  certificate  is 
compromised  (e.g.,  the  token  is  lost);  a  user 
no  longer  represents  an  organization;  and 
when  information  in  the  certificate  is  no 
longer  valid.  Relying  parties  are  notified  that 
a  user’s  certificate  is  revoked  via  certificate 
revocation  lists  (CRLs)  published  by  the 
issuing  Certification  Authority. 


Certificate  Expiration,  Updating, 
and  Re-keying 

Public-private  key  pairs  have  finite  lifetimes 
to  protect  against  key  compromise;  there¬ 
fore,  associated  certificates  also  include  a 
validity  period.  Users  must  obtain  new  cer¬ 
tificates  in  a  timely  fashion  to  prevent  any 
disruption  in  service.  Certificate  re-key  pro¬ 
vides  for  replacement  prior  to  a  certificate’s 
expiration.  The  process  for  updating  or  re¬ 
keying  a  certificate  is  similar  to  the  process 
for  initially  issuing  the  certificate:  The  regis¬ 
tration  process  is  repeated  to  ensure  the  rea¬ 
son  for  having  a  certificate  remains  valid, 
and  the  user’s  identity  is  authenticated. 

Archives 

Archives  provide  a  long-term  repository  for 
storing  information.  Even  though  the  life¬ 
time  of  a  Certification  Authority  is  relative¬ 
ly  short,  it  may  be  necessary  to  verify  signa¬ 
tures  on  old  documents  at  a  later  date.  To 
support  this  need,  the  PKI  archive  service 
stores  user  registration  information,  certifi¬ 
cates,  and  CRLs  issued  by  the  Certification 
Authority. 

Common  Access  Cards 

First  and  foremost,  the  CAC  is  the  official 


ID  card  for  DoD  members  (i.e.,  US.  mili¬ 
tary  personnel,  DoD  civilians,  eligible  con¬ 
tractors,  and  members  of  foreign  nations 
employed  in  support  of  the  DoD  mission). 

Each  CAC  includes  multiple  storage 
areas,  such  as  a  bar  code  and  an  integrated 
circuit  chip  on  the  front  of  the  card,  and  a 
bar  code  and  magnetic  stripe  on  the  back. 
Various  data  elements,  such  as  ID  data,  ben¬ 
efits  information,  organizational  data,  card 
management  data,  and  PKI  credentials  (i.e., 
certificates  and  public/private  key  pair),  are 
stored  in  one  or  more  areasl  Data  stored  on 
the  CAC  can  only  be  accessed  through 
secure  CAC  applications. 

However,  the  CAC  is  much  more  than 
an  ID  card.  Security-enhanced  engineering 
allows  the  CAC  to  serve  as  the  primary 
interface  between  the  user  and  the  PKI  via 
unclassified  networked  devices,  such  as 
desktops,  laptops,  handheld  wireless  devices, 
and  peripherals,  enabled  for  PKI  use. 

Enabled  devices  equipped  with  a  smart 
card  reader  (and  configured  with  the  appro¬ 
priate  middleware  application,  drivers,  and 
applicable  settings)  facilitate  improved  lA 
on  PK-enabled  networks,  systems,  applica¬ 
tions,  and  Web  servers  via  the  digital  certifi¬ 
cates  and  the  associated  public/private  key 


Figure  5:  Digital  Signature  Process^ 
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pair  embedded  in  the  integrated  circuit  chip 
(see  Figure  6). 

Public  Key  Cryptography  in  the 
Air  Force 

In  December  2005,  the  Air  Force  mission 
statement  was  revised  to  include  cyber¬ 
space  as  a  critical  domain  in  which  to  fly 
and  fight  [9].  Emphasis  in  this  domain 
includes,  among  other  things,  the  defense 
and  protection  of  critical  communications 
assets.  Air  Force  officials  refer  to  cyber¬ 
space  as  the  new  battlefield  where  our  adver¬ 
saries  operate  and  are  gaining  ground. 
According  to  Lt.  Gen.  Robert  Elder,  Jr., 
former  Commander,  8th  Air  Force:  “It’s 
our  most  vulnerable  area,  and  because  it 
crosses  all  other  domains  (air,  land,  sea, 
and  space),  it  is  clearly  a  warfighting 
domain”  [10]. 

Motivated  by  this  new  focus,  the  Air 
Force  has  stepped  up  its  PKI  implementa¬ 
tion  initiatives  and  worked  diligently  to 
become  compliant  with  DoD  directives. 
For  example,  all  unclassified  Air  Force 
networks  and  networked  applications  are 
being  public  key-enabled  to  provide  more 
efficient  lA  services  and  stronger  authen¬ 
tication  provisions. 

Throughout  the  Air  Force,  as  well  as  in 
the  DoD,  employees  use  public  key- 
enabled  applications  in  support  of  their 
daily  activities.  The  rest  of  the  federal  gov¬ 
ernment,  defense  contractors  and  suppli¬ 
ers,  and  allies  also  use  PKI-enabled  ser¬ 
vices.  Applied  uses  of  public  key  cryptog¬ 
raphy  in  the  Air  Force  include: 

•  Identification  and  authentication  for 
gaining  access  to  unclassified  net¬ 
worked  computers,  restricted  Web 
sites,  applications,  and  other  resources 
(instead  of  usernames  and  passwords). 

•  Secure  client-server  transactions  via 
the  Secure  Sockets  Layer  protocol. 

•  Secure  financial,  personnel,  and  con¬ 
tractual  transactions. 


•  Secure  unclassified  messaging  with 
authentication  of  originator,  and  con¬ 
fidentiality  and  integrity  of  transmitted 
data. 

•  Software  (code)  signing  to  ensure  the 
authenticity  and  integrity  of  software 
obtained. 

•  Virtual  private  networking  via  IP 
security. 

In  Conclusion:  Tangible 
Benefits 

Without  a  doubt,  PKI  implementation 
across  the  DoD  has  attracted  a  significant 
amount  of  attention,  primarily  because  of  its 
high  level  of  security  services  that  support 
the  overall  lA  strategy.  The  PKI  is  a  sound 
technical  solution — and  is  not  simply  a  neat 
technology  lacking  tangible  benefits.  When 
deployed  judiciously,  the  PKI  offers  certain 
fundamental  advantages  to  an  organEation. 
Its  capabilities  help  optimize  workforce  pro¬ 
ductivity  and  improve  workflow  efficiencies 
through  more  automated  and  secure  busi¬ 
ness  processes — ^including  significant  cost 
savings  through  the  reduction  of  administra¬ 
tive  overhead,  reduction  in  the  number  of 
sign-on  events  required  by  end-users,  and 
reduction  in  paper-based  processes. 

Knowing  that  virtually  every  day,  every 
airman  legitimately  accessing  DoD  networks 
is  using  the  PKI  helps  maintain  confidence 
in  critical  electronic  communications.  One 
can  take  comfort  in  that.^ 
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Figure  6:  The  CAC  Interfaces  With  the  PKI  Through  a  Smart  Card  Keader 
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Notes 

1 .  The  PKI  is  not  simply  a  product,  a  pro¬ 
gram,  or  a  system — ^nor  is  it  software  or 
an  application.  It  is  a  complex  combina¬ 
tion  of  specific  hardware,  specialized 
software,  tokens,  established  policies, 
and  proven  procedures  that  collectively 
provide  the  ability  to  authenticate  identi¬ 
ties  and  protect  valuable  information 
through  the  use  of  unique  digital  certifi¬ 
cates  and  key  pairs. 

2.  The  DoD  PKI  Chain  of  Trust  begins  at 
the  DoD  Root  Certification  Authority. 
The  Root  Certification  Authority’s  pub¬ 
lic  key  certificate  is  signed  by  its  own  pri¬ 
vate  key.  It  issues  and  digitally  signs  the 
certificates  of  the  subordinate  and  inter¬ 
mediate  Certification  Authorities,  who  in 
turn  digitally  sign  the  user  certificates 
they  issue.  The  trustworthiness  of  each 
layer  is  guaranteed  by  the  one  before. 

3.  The  key  that  is  not  publicly  revealed  is  a 
private  key,  rather  than  a  secret  key.  This 
avoids  confusion  with  the  secret  key  of 
symmetric  cryptography  if  one  thinks  of 
two  people  sharing  a  secret,  but  a  single 
person  keeping  something [2]. 

4.  Because  of  the  processing  expense  in 
encrypting  an  entire  message  using  pub¬ 
lic  key  cryptography,  the  digital  signature 
process  encrypts  a  digest  of  the  message 
rather  than  the  message  itself 

5.  For  the  purpose  of  this  article,  a  threat'll 
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Software  Defense  Application 

The  DoD  implemented  a  PKI  to  provide  engineered  solutions  that  now  enhance  the 
security  of  networked  computer-based  systems.  Programs  and  applications,  which 
carry  out  or  support  the  DoD  mission,  require  PKI  services  of  authentication,  con¬ 
fidentiality,  technical  non-repudiation,  and  integrity  These  services  are  met  with  an 
array  of  network  security  components  such  as  standardized  workstation  configura¬ 
tions,  firewalls,  routers,  in-Hne  network  encryptors,  and  trusted  database  servers. 
Public  key  cryptography  supports  and  complements  these  component  operations. 
As  a  system  solution,  the  components  share  the  burden  of  the  total  system  security. 


defined  as  any  circumstance  or  event, 
from  an  authorized  or  unauthorized 
entity  either  inside  or  outside  the  domain 
perimeter,  with  the  potential  to  cause 
harm  to  an  information  system  in  the 
form  of  destruction,  disclosure,  modifi¬ 
cation  of  data,  and/ or  denial  of  service. 

6.  Encryption  certificates  are  advertised  in 
the  DoD  via  the  Joint  Enterprise 
Directory  Service  (located  at  <https:// 
jeds.gds.disa.mil>),  which  is  the  target 
environment,  and  supported  by  the 
Global  Directory  Service  at  <https:// 
dod41 1  .gds.disa.mil> . 

7.  This  depiction  of  public  key  encryption 
and  digital  signatures  shows  text  and 


documents  as  the  data  being  protected. 
PubHc  key  encryption  and  digital  signa¬ 
tures  can  be  used  with  any  type  of  data 
in  a  wide  variety  of  scenarios. 

8.  Except  for  the  PKI  information,  which 
is  obtained  from  the  CA,  aU  other  infor¬ 
mation  about  the  ID  card  holder  is 
obtained  from  the  Defense  Enrollment 
Eligibility  Reporting  System  through  the 
Real-time  Automated  Personnel  Ident¬ 
ification  System.  Home  address  and  tele¬ 
phone  number,  dependent  information, 
and  medical,  dental,  financial,  and  per¬ 
sonnel  records  are  not  stored  anywhere 
on  the  CAC. 
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